superhuman / rxxr2
☆143Updated 2 years ago
Alternatives and similar repositories for rxxr2:
Users that are interested in rxxr2 are comparing it to the libraries listed below
- A tool to perform static analysis on regexes to determine whether they are vulnerable to ReDoS.☆109Updated 2 years ago
- A Node.js vulnerability finding tool.☆96Updated 4 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆59Updated 3 weeks ago
- ☆107Updated 3 years ago
- ☆350Updated last month
- Generic SAST Library☆130Updated 4 months ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆321Updated 3 years ago
- My CodeQL queries collection☆96Updated last year
- Personal CodeQL queries☆61Updated last week
- CodeQL model generation for Go.☆17Updated 3 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 7 years ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆43Updated 2 years ago
- Intentionally vulnerable Go web app.☆43Updated 2 months ago
- ☆71Updated 3 years ago
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆210Updated 6 months ago
- JWT fuzzer☆105Updated 6 years ago
- CodeQL database manager☆48Updated 3 weeks ago
- ☆17Updated 6 years ago
- When MVC magic turns black☆291Updated 4 years ago
- An automated tool for the detection of regexes' slow-matching vulnerabilities.☆156Updated 3 years ago
- A static byte code analyzer for Java deserialization gadget research☆241Updated 7 years ago
- Record some Vulnerabilities☆44Updated 2 years ago
- WebAppSec Content Security Policy☆217Updated last week
- Collection of community-driven CodeQL query, library and extension packs☆146Updated 3 weeks ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.☆140Updated 6 years ago
- Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…☆75Updated 6 years ago
- 🌍 Normalized repository URLs for every package in the npm registry. Updated daily.☆82Updated this week
- My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition☆19Updated 4 years ago